Mandarin Oriental has confirmed that the credit card systems at some of its hotels in the US and Europe have been accessed illegally.
The hotel group said in a statement that it has “identified and removed malware” from its systems, and is in discussions with “credit card agencies, law enforcement authorities and forensic specialists” about improving security. No Asian hotels were affected.
“The incident is a direct result of an unauthorised cyber-attack. Despite the group’s leading data security systems, this malware was undetectable by all anti-viral systems. By working with forensic experts Mandarin Oriental moved swiftly to remove offending malware,” the company said in a statement.
“We take the protection of customer information very seriously. Unfortunately incidents of this nature are increasingly becoming an industry-wide concern and we have therefore also alerted our technology peers in the hospitality industry,”
Mandarin Oriental said the breach affected credit card data, but not pin numbers or security codes. “No other personal guest data has been compromised,” the company said, but it advised concerned customers to “contact your credit card provider directly”.
Comments are closed.